A new cryptographic GEOM class is available as of FreeBSD 6.0 - geli. It is currently being developed by Pawel Jakub Dawidek <pjd@FreeBSD.org>. Geli is different to gbde; it offers different features and uses a different scheme for doing cryptographic work.

The most important features of geli(8) are:

Utilizes the crypto(9) framework -- when cryptographic hardware is available, geli will use it automatically.

Supports multiple cryptographic algorithms (currently AES, Blowfish, and 3DES).

Allows the root partition to be encrypted. The passphrase used to access the encrypted root partition will be requested during the system boot.

Allows the use of two independent keys (e.g. a “key” and a “company key”).

geli is fast - performs simple sector-to-sector encryption.

Allows backup and restore of Master Keys. When a user has to destroy his keys, it will be possible to get access to the data again by restoring keys from the backup.

Allows to attach a disk with a random, one-time key -- useful for swap partitions and temporary file systems.

More geli features can be found in the geli(8) manual page.

Read more here (http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html).

I will make new 1.3Beta1 kernel PBI and post it here for tesing purposes. This time I disable drm support that is maybe causing problems with Nvidia native driver.

GEOM geli encryption support is added into this BETA kernel (http://forums.pcbsd.org/viewtopic.php?p=30115#30115).